Andreas/markdownlint
1
0
Fork 0
mirror of https://github.com/DavidAnson/markdownlint.git synced 2025-09-22 05:40:48 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 10

Update code to fix or document false positives for CodeQL warnings.

Browse source
This commit is contained in:
David Anson 2020-10-02 13:33:05 -07:00
parent f1f6868a2c
commit aa7fbce2dd
3 changed files with 7 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

3
helpers/helpers.js
View file

@ -61,6 +61,8 @@ module.exports.isObject = function isObject(obj) {
// Example: Contains nothing, whitespace, or comments
const blankLineRe = />|(?:<!--.*?-->)/g;
module.exports.isBlankLine = function isBlankLine(line) {
// Call to String.replace follows best practices and is not a security check
// False-positive for js/incomplete-multi-character-sanitization
return !line || !line.trim() || !line.replace(blankLineRe, "").trim();
};
@ -355,6 +357,7 @@ function forEachInlineCodeSpan(input, handler) {
let currentTicks = 0;
let state = "normal";
// Deliberate <= so trailing 0 completes the last span (ex: "text `code`")
// False-positive for js/index-out-of-bounds
for (; index <= input.length; index++) {
const char = input[index];
// Ignore backticks in link destination